Lucene search
K

6 matches found

CVE
CVE
added 5 hours ago6 views

CVE-2026-15300

CVE-2026-15300 affects the GEO my WP WordPress plugin up to version 4.5.4. An SQL injection exists via the distance, lat, and lng parameters. Values are read from $_SERVER['QUERY_STRING'] with parse_str(), then passed through bare esc_sql() and interpolated into unquoted numeric positions in the ...

9.1CVSS6AI score
Exploits0References6
EUVD
EUVD
added 5 hours ago4 views

EUVD-2026-42807

The GEO my WP plugin for WordPress was vulnerable to SQL Injection via the 'distance', 'lat', and 'lng' parameters in versions up to, and including, 4.5.4. The values were read from $SERVER'QUERYSTRING' via parsestr bypassing wpmagicquotes, which does not cover $SERVER, then passed through bare...

9.1CVSS6AI score
Exploits0References6
EUVD
EUVD
added 2026/04/09 9:31 p.m.4 views

EUVD-2023-60559

Joomla Solidres 2.13.3 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by manipulating multiple GET parameters including show, reviews, typeid, distance, facilities, categories, prices, location, and Itemid. Attackers can...

6.1CVSS5.8AI score0.00226EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2023/09/05 10:15 p.m.4 views

CVE-2023-41507

Super Store Finder v3.6 was discovered to contain multiple SQL injection vulnerabilities in the store locator component via the products, distance, lat, and lng parameters...

9.8CVSS7.4AI score0.00784EPSS
Exploits2References3
GithubExploit
GithubExploit
added 2023/09/05 3:26 a.m.10 views

Exploit for SQL Injection in Superstorefinder Super_Store_Finder

CVE-2023-41507 CVE-2023-41507 - Super Store Finder v3.6 was di...

9.8CVSS10AI score0.00784EPSS
Exploits2
CNNVD
CNNVD
added 2023/09/05 12:0 a.m.7 views

Super Store Finder SQL Injection Vulnerability

Super Store Finder is an easy-to-use Google Maps API store locator program Super Store Finder by Super Store Finder. A security vulnerability exists in Super Store Finder version v3.6, which stems from an SQL injection vulnerability in the store locator component that contains multiple SQL...

9.8CVSS8.1AI score0.00784EPSS
Exploits2References3
Rows per page
Query Builder